Veeam Service Provider Console 7.0 [Archived]
Guide for Service Providers
Related documents
Search
This is an archive version of the document. To get the most up-to-date information, see the current version.

Configuring SSO for Azure AD

To configure SSO authentication with Azure AD:

  1. Log in to Veeam Service Provider Console.

For details, see Accessing Veeam Service Provider Console.

  1. At the top right corner of the Veeam Service Provider Console window, click Configuration.
  2. In the configuration menu on the left, click Security.
  3. On the SIngle Sign-On tab, click New and select Custom from the drop-down list.

The identity provider configuration wizard will open.

  1. At the Provider Info step of the wizard, specify general information on the IdP:

Save the link locally.

If you apply changes to Client ID value after link generation, click New link.

Save the link locally.

If you apply changes to Client ID value after link generation, click New link.

  1. Access Azure AD web portal.
  2. Navigate to the Enterprise Applications tab.
  3. In the menu on the left, select All applications.
  4. At the top of the list, click New application.
  5. In the Browse Azure AD Gallery window, click Create your own application.
  6. In the Create your own application side window, specify the name of the integration with Veeam Service Provider Console and select Integrate any other application you don't find in the gallery (Non-gallery).
  7. In Veeam Service Provider Console, insert the application name into the Client ID field.

Insert Client ID

  1. In Azure AD, open the created application.
  2. In the menu on the left, click Single sign-on and select SAML.

The SAML-based Sign-on page will open.

  1. Copy the App Federation Metadata URL link.
  2. In Veeam Service Provider Console, insert the URL into the Identity Provider URL field.

Insert Identity Provider URL

  1. In Azure AD, from the Set up ... widget, copy the Microsoft Entra Identifier link.
  2. In Veeam Service Provider Console, paste the link into the Entity ID field.

Insert Entity ID

  1. In Azure AD, in the top right corner of the Basic SAML Configuration widget, click Edit.
  2. In the Identifier (Entity ID) section, insert the URL generated in the SP entity ID URL field at step 5 into the empty field.
  3. Select the Default check box next to the new URL and delete the old URL.
  4. In the Reply URL (Assertion Consumer URL) section, insert the URL generated in the Assertion consumer URL field at step 5 into the empty field.
  5. Select the Default check box next to the new URL and delete the old URL.
  6. Click Save.
  7. Follow steps 6-8 described in the Adding Identity Providers section.
  8. In Azure AD, at the top of the SAML-based Sign-on page, click Upload metadata file and upload the XML file obtained after IdP configuration.
  9. Follow steps 9-10 described in the Adding Identity Providers section.
  10. In Azure AD, navigate to the Users and groups tab and add users that will have access to Veeam Service Provider Console.
View all results across Veeam
Back to document search